Privacy Policy

Last updated: April 5, 2025

Waypoint is committed to protecting your personal data and respecting your privacy. This Privacy Policy describes how personal data is collected, used, and protected by Waypoint-RS in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the “General Data Protection Regulation” or “GDPR”).

1. Data controller

The data controller is Waypoint Research Services, a consultancy company for EU-funded project management and training.

📧 Email: info@waypoint-rs.com

For all matters related to the processing of your personal data, including the exercise of your rights, please contact the controller at the above email address.

2. Data Collected

Waypoint-RS may collect and process the following categories of personal data:

  • Identification and contact data (e.g., name, email address, professional affiliation, job title, telephone number)

  • Scheduling data (e.g., date and time of requested meetings, subject matter)

  • Professional context data (e.g., project information voluntarily shared during meetings or via forms)

  • Website usage data, collected through cookies or analytics tools, which may include IP address, browser type, and pages visited (anonymised or pseudonymised where applicable)

No special categories of personal data (as defined in Article 9 GDPR) are intentionally collected.

3. Purposes of Processing and Legal Bases

Your personal data is processed for the following purposes, pursuant to Article 6 GDPR:

  • To respond to inquiries and provide requested information or services (Article 6(1)(b))

  • To schedule and manage meetings or appointments using third-party tools

  • To maintain records of communications and professional contacts (Article 6(1)(f))

  • To fulfil legal and regulatory obligations, including those related to tax and accounting (Article 6(1)(c))

  • To analyse website usage and improve functionality, based on user consent where applicable (Article 6(1)(a))

We do not sell, rent, or share your personal data with third parties unless legally required or necessary to deliver a requested service - and with your prior consent as Data Owner.

If you subscribe to our newsletter, we will collect and process your name and email address for the purpose of sending you periodic updates related to our services, events, or relevant news in the field of EU funding and project management.

Your personal data will be processed on the basis of your explicit consent (Article 6(1)(a) GDPR), which you may withdraw at any time by clicking the “unsubscribe” link provided in each email or by contacting us directly at info@waypoint-rs.com. We use Google Workspace and MailChimp to manage our mailing list and to ensure secure handling of your subscription. Your data will not be shared with third parties for marketing purposes and will be used solely for the stated communication purpose.

4. Data Retention

Waypoint-RS retains personal data only for as long as is necessary to fulfil the purposes for which it was collected or to comply with applicable legal obligations. Data retention periods may vary depending on the nature of the processing and any contractual or legal requirements. Where data is no longer required, it will be securely deleted or anonymised.

5. Data Transfers and Third Parties

Waypoint-RS does not sell or disclose personal data to unauthorised third parties.

However, data may be processed by trusted service providers acting on behalf of the controller (data processors), such as:

  • Google LLC, as provider of Google Calendar and Google Workspace services, in accordance with GDPR requirements and standard contractual clauses where applicable. Google’s privacy policy can be consulted here: https://policies.google.com/privacy

Personal data will not be transferred outside the European Economic Area (EEA) unless adequate safeguards are in place, such as those defined in Chapter V of the GDPR.

6. Your rights

In accordance with Articles 12–23 GDPR, data subjects have the following rights:

  • The right to access personal data (Article 15)

  • The right to rectification of inaccurate or incomplete data (Article 16)

  • The right to erasure (“right to be forgotten”) under certain conditions (Article 17)

  • The right to restriction of processing (Article 18)

  • The right to data portability (Article 20)

  • The right to object to processing based on legitimate interests (Article 21)

  • The right to withdraw consent at any time, where processing is based on consent (Article 7)

To exercise any of these rights, please contact [Insert email]. A response will be provided within the timeframe required by law (typically 30 days).

7. Cookies and website tracking

Waypoint-RS may use cookies or similar technologies to collect anonymised information about website usage, such as page visits and user preferences.

Users will be informed upon first visit to the website and may consent or refuse the use of non-essential cookies, in accordance with the ePrivacy Directive 2002/58/EC and national implementing laws.

We may update this privacy policy from time to time. The latest version will always be available on this page with the date of last update indicated.

If you believe your personal data has been processed in a manner that is not compliant with the GDPR, you have the right to lodge a complaint with a supervisory authority pursuant to Article 77 GDPR. In the Member State where you reside, work, or where the alleged infringement occurred.